Authentication Bypass Vulnerability in Digi-ads 1.1

Authentication Bypass Vulnerability in Digi-ads 1.1

CVE-2003-0589 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

admin.php in Digi-ads 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password.

Learn more about our User Device Pen Test.